Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The EMM system supporting the iOS/iPadOS 17 BYOAD must be configured to only wipe managed data and apps and not unmanaged data and apps when the user's access is revoked or terminated, the user no longer has the need to access DOD data or IT, or the user reports a registered device as lost, stolen, or showing indicators of compromise.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-259753 | AIOS-17-800130 | SV-259753r943584_rule | Low |
| Description |
|---|
| DOD policy requires the protection and privacy of personal data and activities to the maximum extent possible on BYOADs. Reference: DOD policy "Use of Non-Government Mobile Devices". 3.b.(5). SFR ID: FMT_SMF_EXT.1.1 #47 |
| STIG | Date |
|---|---|
| Apple iOS/iPadOS 17 BYOAD Security Technical Implementation Guide | 2024-01-31 |
Details
| Check Text ( C-63489r943582_chk ) |
|---|
| Verify the EMM system administrators supporting the iOS/iPadOS 17 BYOAD have been trained to only wipe managed data and apps when the user's access is revoked or terminated, the user no longer has the need to access DOD data or IT, or the user reports a registered device as lost, stolen, or showing indicators of compromise. If the EMM system administrators supporting the iOS/iPadOS 17 BYOAD have not been trained to only wipe managed data and apps, this is a finding. |
| Fix Text (F-63396r943583_fix) |
|---|
| Train EMM system administrators supporting the iOS/iPadOS 17 BYOAD to only wipe managed data and apps when the user's access is revoked or terminated, the user no longer has the need to access DOD data or IT, or the user reports a registered device as lost, stolen, or showing indicators of compromise. |